I have just read on ArsTechnica[1] that while Git repository could be corrupted (though this would require attackers to spend great amount of resources creating their own collision, while as said elsewhere in this thread allegedly easy to detect), putting two proof-of-concept different PDFs with same size and SHA-1 actually *breaks* Subversion. Repository can become corrupt, and stop accepting new commits. >From what I understand people tried this, and Git doesn't exhibit such problem. I wonder what assumptions SVN made that were broken... The https://shattered.io/ page updated their Q&A section with this information. BTW. what's with that page use of "GIT" instead of "Git"?? [1]: https://arstechnica.com/security/2017/02/watershed-sha1-collision-just-broke-the-webkit-repository-others-may-follow/ "Watershed SHA1 collision just broke the WebKit repository, others may follow"